Assessing the risk posed by Advanced Cyber Threats (APTs) is challenging without
understanding the methods and tactics adversaries use to attack an organisation. The …

Electric grid cybersecurity risk has become a significant concern of industries and
governments. This paper proposes a dynamic probabilistic risk assessment method for …

Typical cyber security risk assessment methods focus on the system under consideration, its
vulnerabilities, and the resulting impact in the event of a system compromise. Cyber security …

Today's computer networks are prone to sophisticated multi-step, multi-host attacks.
Common approaches of identifying vulnerabilities and analyzing the security of such …

Cybercrime affects companies worldwide, costing millions of dollars annually. The constant
increase of threats and vulnerabilities raises the need to handle vulnerabilities in a …

Internet-of-Things (IoT) and cyber-physical systems (CPSs) may consist of thousands of
devices connected in a complex network topology. The diversity and complexity of these …

Since Cyber-Physical Systems (CPS) are widely used in critical infrastructures, it is essential
to protect their assets from cyber attacks to increase the level of security, safety and …

This paper describes the development of situational awareness models and applications to
assess cybersecurity risks based on Annex ISO 27001: 2013. The risk assessment method …

The challenge of decision‐making under uncertainty in information security has become
increasingly important, given the unpredictable probabilities and effects of events in the ever …

The pervasiveness of complex technological infrastructures and services coupled with the
continuously evolving threat landscape poses new sophisticated security risks. These risks …